Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BC2445CF91811EDABC48D1B4AD9E6FC.roa
File: 4BC2445CF91811EDABC48D1B4AD9E6FC.roa (raw, json)
Hash identifier: qsZ3mHwvbRT/dXz/LizsQB7KlsDpZo57vyNE8a+5+sc=
Subject key identifier: 49:49:E1:5A:C8:AF:3D:E0:09:09:54:00:83:19:74:C6:98:E8:A2:53
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 26D4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BC2445CF91811EDABC48D1B4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:17:06 +0000
ROA not before: Tue 23 May 2023 03:17:03 +0000
ROA not after: Tue 05 Nov 2024 03:17:03 +0000
asID: 399674
IP address blocks: 156.252.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9940 (0x26d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:17:03 2023 GMT
Not After : Nov 5 03:17:03 2024 GMT
Subject: CN=646c3032-93ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:89:70:31:6c:41:43:33:82:39:e3:d0:b2:c1:
64:d2:2b:ef:b9:0b:88:86:0a:71:52:01:88:b4:fb:
ce:a1:3a:a9:48:d5:9b:c7:bd:cd:eb:2c:e5:ec:4b:
71:a8:b8:37:eb:80:bf:bf:8a:f6:39:63:98:d2:51:
72:07:a2:68:85:cb:48:9b:a5:ff:b5:e6:21:d1:89:
3e:da:04:29:9f:aa:00:91:8d:02:7f:a5:91:bf:99:
d6:09:9d:98:44:12:0b:37:be:63:2c:ae:c4:6c:72:
b4:ea:a7:83:83:7a:31:11:b9:49:63:0e:88:37:53:
58:1f:a4:6f:fb:79:03:54:13:21:b4:c5:31:b9:cf:
1e:83:b5:02:c7:58:43:f3:a2:80:7a:27:94:a5:d2:
3a:f7:ac:4c:46:b9:62:f6:08:fc:5e:3b:e0:ac:41:
d7:27:c4:0e:2c:a7:ff:99:d9:84:71:a2:d9:95:09:
43:5e:6a:2c:92:0f:c7:16:90:ec:ad:89:55:15:a3:
68:ab:73:12:86:12:72:5f:32:94:ec:60:5e:f7:9a:
d0:a1:8f:e3:65:50:95:27:3b:d7:5d:46:e6:c0:d1:
4f:5b:6c:b9:97:f1:b6:ab:23:7c:74:55:18:7c:16:
a8:5b:52:e9:14:73:99:1f:2d:aa:a3:9f:fa:c9:bc:
c2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:49:E1:5A:C8:AF:3D:E0:09:09:54:00:83:19:74:C6:98:E8:A2:53
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BC2445CF91811EDABC48D1B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.192.0/19
Signature Algorithm: sha256WithRSAEncryption
7b:42:ec:4e:d1:25:c9:09:a0:fb:6b:44:45:5b:85:46:44:34:
c3:b0:a2:5a:a7:71:a5:c4:6c:b0:25:99:81:78:a6:d6:c7:f0:
db:b4:a4:c5:e6:b2:1f:5e:06:c8:5c:69:4e:8c:95:c4:7c:11:
31:1b:0d:43:27:fb:dc:42:eb:25:b8:26:43:98:73:be:2a:98:
54:0a:5b:1f:b7:9f:6d:7d:8f:d3:bb:8c:ed:06:e5:63:36:74:
59:c6:7e:95:5a:a2:51:0a:cb:37:3e:90:ef:2d:62:a9:d8:af:
fd:88:e8:f9:19:8c:36:5a:30:1b:af:45:b6:85:7c:0b:e5:cd:
15:b2:23:9b:0a:1c:4d:82:99:b1:4f:f5:3b:45:f9:75:da:c0:
70:c0:40:e6:62:6e:c0:55:3b:ac:89:e8:6d:2b:e4:1a:91:08:
5e:76:b0:9e:49:8c:c7:f3:0c:db:49:ed:9b:6f:af:c5:6e:80:
a6:eb:17:68:c4:9b:44:f3:ca:f3:97:e2:4f:90:f7:68:24:d8:
f9:47:df:81:f3:ef:d9:05:28:69:98:87:6f:b5:32:8b:84:b4:
5f:3f:fc:49:ab:3c:c4:18:14:b6:8c:69:39:e4:c7:28:3f:db:
a0:f4:78:42:62:c1:4e:e0:db:ba:f7:1d:96:fb:38:92:51:05:
f5:4d:8c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 12:42:50 2024 by rpki-client on console-ams.rpki-client.org